[FEATURE] Add configurable asset allowlist with admin API

[ritik4ever]

Category: backend
Project area: backend/src/index.ts

Context:
ALLOWED_ASSETS is currently a static env var comma-separated list.

Implementation:

• Admin JWT-protected endpoints: GET /api/admin/assets, POST /api/admin/assets, DELETE /api/admin/assets/:code.
• Changes take effect without restart.
• Changes persisted to SQLite.

Acceptance Criteria:

• Stream creation with non-allowlisted asset returns 400.
• Admin can add/remove assets at runtime.
• Initial list seeded from ALLOWED_ASSETS env var.

[rindicomfort]

@rindicomfort has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

Hello Maintainer,

Please I’d love to take this issue on. I’m a smart contract and full-stack developer with experience across OnlyDust, Drips Waves

My stack includes Rust, Soroban, Cairo, Solidity, and TypeScript. I can deliver a clean, tested, and well-documented solution within 24 hours of assignment.

Happy to start immediately. Thank yOU

ℹ️ Repo Maintainers: To accept this application, review their application or assign @rindicomfort to this issue.

[Anadudev]

@Anadudev has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

I would like to work on this issue

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Anadudev to this issue.

[CHKM001]

@CHKM001 has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

I will add the allowlist within admin API as requested.
PR merge available within a few hours
Thanks

ℹ️ Repo Maintainers: To accept this application, review their application or assign @CHKM001 to this issue.

[raymondidahor-bot]

@raymondidahor-bot has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

I would love to work on this project. I can deliver within a short time.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @raymondidahor-bot to this issue.

[somotochukwu-dev]

@somotochukwu-dev has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

Hi
Please assign this issue to me

ℹ️ Repo Maintainers: To accept this application, review their application or assign @somotochukwu-dev to this issue.

[midexol]

@midexol has applied to work on this issue as part of the Stellar Wave Program's 6th wave.

Hi maintainer, I'd like to work on this issue

ℹ️ Repo Maintainers: To accept this application, review their application or assign @midexol to this issue.

[drips-wave]

Congratulations, @Anadudev! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on June 30, 2026.

🧑‍💻 @Anadudev: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊